312-50V13 · Question #355
What would you enter if you wanted to perform a stealth scan using Nmap?
The correct answer is C. nmap -sS. To perform a stealth scan using Nmap, you would use the -sS option for a TCP SYN scan, which avoids completing the full TCP three-way handshake.
Question
Options
- Anmap -sM
- Bnmap -sU
- Cnmap -sS
- Dnmap -sT
How the community answered
(26 responses)- A4% (1)
- B8% (2)
- C88% (23)
Why each option
To perform a stealth scan using Nmap, you would use the `-sS` option for a TCP SYN scan, which avoids completing the full TCP three-way handshake.
The `nmap -sM` option is not a recognized or standard Nmap scan type.
The `nmap -sU` option performs a UDP scan, which targets UDP ports and is not considered a stealthy TCP scan.
The `nmap -sS` command performs a TCP SYN scan, also known as a 'stealth scan' or 'half-open scan.' This method sends a SYN packet and waits for a SYN/ACK (indicating an open port) or RST (indicating a closed port) without completing the three-way handshake, making it less likely to be logged by the target system than a full TCP connect scan.
The `nmap -sT` option performs a TCP connect scan, which completes the full three-way handshake, making it easily detectable and loggable by the target system and thus not considered stealthy.
Concept tested: Nmap stealth scanning (SYN scan)
Source: https://nmap.org/book/man-port-scanning-techniques.html
Topics
Community Discussion
No community discussion yet for this question.